Competitive Audits
First Flights
Leaderboard
Docs
Toggle theme
Sign up
Log in
All Contests
Aave DIVA Wrapper
Submissions
Public
Aave DIVA Wrapper
DIVA
Hardhat
DeFi
15,000
USDC
Public
15,000
USDC
Jan 24th, 2025 → Jan 31st, 2025
View repo
View results
557 / 557
Submissions
Severity
Validity
Tags
Author
#1
abi.encodePacked() should not be used with dynamic types when passing the result to a hash function such as keccak256()
Medium
Invalid
sidanaarmaan2003
#2
Data Provider Trust Vulnerability Report for IAaveDIVAWrapper Interface
Medium
Invalid
sidanaarmaan2003
#3
place holder
High
Invalid
0xwsecteam
#4
Function using iterating array
Medium
Invalid
equation
#5
Missing Zero-Address Validation for Contract Owner in Constructor
High
Invalid
sidanaarmaan2003
#6
AaveDIVAWrapperCore Smart Contract Vulnerability: Silent Failure in Liquidity Removal
Medium
Invalid
sidanaarmaan2003
#7
Shadowing of State Variables in AaveDIVAWrapper Constructor
Low
Invalid
sidanaarmaan2003
#8
Missing Docstrings Throughout Codebase
Low
Invalid
grimreaper
#9
Missing Input Validation (AaveDIVAWrapperCore.sol)
High
Invalid
fiifihayford4
#10
Unnecessary Void Constructor Call in AaveDIVAWrapperCore
Low
Invalid
grimreaper
#11
[L-01] Arbitrary Token Burn by Owner
Low
Invalid
jakefromstatefarm
#12
Re-use local variable within a function instead of accessing from storage.
Low
Invalid
abdu1918
#13
[L-04] DoS via Gas Exhaustion in batchAddLiquidity
Low
Invalid
jakefromstatefarm
#14
Constructor Argument Mismatch Could Lead to Protocol Address Swap
Low
Valid
Constructor arguments mismatch
mill1995
#15
[L-02] Lack of access control in approveCollateralTokenForAave Function
Low
Invalid
jakefromstatefarm
#16
[M-02] DoS via Gas Exhaustion in batchCreateContingentPool function
Medium
Invalid
jakefromstatefarm
#17
Lack of event emission
Low
Invalid
mustaphaabdulaziz00
#18
Batch operations without error handling in AaveDIVAWrapper at batchRegisterCollateralToken and batchAddLiquidity
Medium
Invalid
mustaphaabdulaziz00
#19
Lack of parameter validation in AaveDIVAWrapper at addLiquidity
Medium
Invalid
mustaphaabdulaziz00
#20
AToken address Validation from AAVE
Low
Invalid
elooo
#21
missing input validation _poolParams
Medium
Invalid
elooo
#22
Large Batches
Medium
Invalid
elooo
#23
Denial of Service (DoS) Risks in _createContingentPool Function Due to External Call Failures
High
Invalid
0x0107
#24
[M-03] DoS via Gas Limit Exhaustion in batchRemoveLiquidity
Medium
Invalid
jakefromstatefarm
#25
Missing Validation for _collateralAmount Parameter in _addLiquidity Function
Medium
Invalid
0x0107
#26
Wrong parameter sequence in AaveDivaWrapper constructor
Low
Valid
Constructor arguments mismatch
unitedcoolness26
#27
External Call Risks in _redeemWTokenPrivate Function Due to Aave Withdrawal
High
Invalid
0x0107
#28
Potential Edge Case in Yield Claiming Due to State Changes Between Calls
Low
Invalid
0x0107
#29
Use forceApprove for collateral token contract
Low
Invalid
unitedcoolness26
#30
Irreversible registration of collateral tokens can expose the protocol to operational risks
Low
Invalid
[Invalid] No way to remove ...
victorzsh
Previous
1
2
3
...
More pages
19
Next
Support
FAQs
Can't find an answer? Chat with us on Discord, Twitter or Linkedin.
What is Cyfrin CodeHawks?
What is a competitive audit?
How can I host a competition on CodeHawks?
How is a contest prize pool determined?
How do I get rewarded?
What is a First Flight?
Give us feedback!
